Soroush Dalili – Computer Security Is My Interest!

Soroush Dalili's blog – بلاگ سروش دلیلی
icon
  • Home
  • About Me
  • Advisories
  • Contact Me
  • FAQs
  • Links
  • Projects
    • Cross Site Request Forgery (CSRF) PoC Template (by Javascript)
    • Excel Advanced Search Add-In Application

The Web Application Security Consortium Threat Classification v2.0

On January 4, 2010, in Normal Posts, Security Posts, by Soroush Dalili
0 Comments
Leave A Response

Tagged with: WASC Threat Classification v2.0 • Web Application Security Consortium Threat Classification 

Microsoft Contradiction

On January 3, 2010, in Security Posts, by Soroush Dalili
0 Comments
Leave A Response

Tagged with: Microsoft IIS Vulnerability 

Browsers’ Pain: A recursive function!

On December 25, 2009, in Security Articles, Security Posts, by Soroush Dalili
0 Comments
Leave A Response

Tagged with: Browsers’ Pain • Mozilla Crash Function 

Microsoft IIS Semi-Colon Vulnerability

On December 25, 2009, in My Advisories, Security Posts, by Soroush Dalili
10 Comments
Leave A Response

Tagged with: Execute ASP by JPG • IIS File Extension Security Bypass • IIS semicolon bug • IIS semicolon vulnerability • Microsoft IIS Vulnerability • Run ASP by JPG 

My belief: 70% of websites are vulnerable

On November 29, 2009, in Security Articles, Security Posts, by Soroush Dalili
0 Comments
Leave A Response

Tagged with: Critical vulnerabilities • CSRF Attacks • OWASP top 10 • SQL Injection Vulnerability • website vulnerability • XSS Vulnerability 
Previous Entries Next Entries

Categories 

  • My Advisories (8)
  • Normal Posts (22)
  • Security Articles (17)
  • Security Posts (31)
 

Recent Posts 

  • Drag and Drop XSS in Firefox by HTML5 (Cross Domain in frames)
  • “Advisories” has been updated
  • Flash ExternalInterface.call() JavaScript Injection – can make the websites vulnerable to XSS
  • Travian Game Patch – Finally!
  • Unrestricted File Download V1.0 – Windows Server
 

Tags 

All Facebook Application Walls block ip block isp Blog Template by using iMacros close advertisment computer science vulnerabilities credit card algorithm credit card algorithm is equal to IMEI algorithm Critical vulnerabilities CSRF Attacks educational bug finding Facebook Add Friend Facebook Automatic Friend Add Facebook Automation Friend Facebook Game Cheat FaceBook MobWars Cheat final project article free web hosting ftp vulnerabilities hacking videos IMEI algorithm javascript to close advertisements java vulnerabilities logical flaw Microsoft IIS Vulnerability National ID Code Algorithm National ID Code JavaScript Phishing attacks Privacy soroush dalili sql injection tutorial travian game travian hack travian online game university of birmingham vulnerabilities Web application security in ASP Web application security in ASP - (simple) JSP Web application security in JSP weblogs website vulnerability XSS XSS Vulnerability الگوریتم کد ملی کد ملی
 

RSS OWASP Feeds 

  • Microsoft Anti-XSS Library Bypass (MS12-007) January 19, 2012
  • The Ascendancy of the Application Layer Threat - SYS-CON Media (press release) (blog) January 19, 2012
  • XMLHttpRequest Level 2 Draft Published January 18, 2012
  • Cursorjacking again January 18, 2012
  • Year Of Security for Java – Week 3 – Session Cookie Secure Flag January 18, 2012
 

RSS Symantec Security News 

  • LUA: Non-existent Distribution causes actual Distribution to fail. January 20, 2012
  • Question about SEp move from one machine to another January 20, 2012
  • DLP - Incident Details & Smart Responses January 20, 2012
  • Deploying a new client in SEP 12.1 January 20, 2012
  • Replication Partner January 20, 2012
 

RSS New Vulnerabilities 

  • Vuln: Pligg CMS 'status' Parameter SQL Injection Vulnerability December 29, 2012
  • Vuln: HP OpenView Network Node Manager Multiple Remote Code Execution Vulnerabilities January 20, 2012
  • Vuln: Apache Tomcat Hash Collision Denial Of Service Vulnerability January 20, 2012
  • Vuln: OpenStack Nova Image Registration Arbitrary Input Validation Vulnerability January 20, 2012
  • Bugtraq: DC4420 - London DEFCON - 24 January 2012
  • Bugtraq: InfoSec Southwest 2012 Open Registration
  • Bugtraq: [Suspected Spam] Barracuda Spam/Virus WAF 600 - Multiple Web Vulnerabilities
  • Bugtraq: Webcalendar 1.2.4 'location' XSS
  • More rss feeds from SecurityFocus
 

Soroush Dalili – Computer Security Is My Interest!

Pages

  • About Me
  • Advisories
  • Contact Me
  • FAQs
  • Links
  • Projects
    • Cross Site Request Forgery (CSRF) PoC Template (by Javascript)
    • Excel Advanced Search Add-In Application

Stay In Touch

  • About Me
  • Advisories
  • Contact Me
  • FAQs
  • Links
  • Projects
    • Cross Site Request Forgery (CSRF) PoC Template (by Javascript)
    • Excel Advanced Search Add-In Application

More

Thanks for dropping by! Feel free to join the discussion by leaving comments, and stay updated by subscribing to the RSS feed.
© Soroush Dalili blog
iBlog by PageLines
Twitter Twitter LinkedIn LinkedIn